Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Pandora FMS on all allows Cross-Site Scripting (XSS). This vulnerability allowed users with low privileges to introduce Javascript executables via a translation string that could affect the integrity of some configuration files. This issue affects Pandora FMS: from 700 through 773.
References
Link | Resource |
---|---|
https://pandorafms.com/en/security/common-vulnerabilities-and-exposures/ | Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: PandoraFMS
Published: 2023-11-23T14:41:46.802Z
Updated: 2023-11-23T14:41:46.802Z
Reserved: 2023-09-01T11:54:47.539Z
Link: CVE-2023-41791
JSON object: View
NVD Information
Status : Analyzed
Published: 2023-11-23T15:15:08.930
Modified: 2023-11-29T20:58:51.777
Link: CVE-2023-41791
JSON object: View
Redhat Information
No data.
CWE